Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZifMq23C6VhuLMEbJ5VzWjH9m4o.cer
File: ZifMq23C6VhuLMEbJ5VzWjH9m4o.cer (raw, json)
Hash identifier: c0QO+HhtHcPlgKyBp8+cG2I6D0YA0+4FgmLBBOIhByc=
Subject key identifier: 66:27:CC:AB:6D:C2:E9:58:6E:2C:C1:1B:27:95:73:5A:31:FD:9B:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EAAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/ZifMq23C6VhuLMEbJ5VzWjH9m4o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Apr 2024 13:00:45 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 7491
AS: 45126
IP: 117.58.192.0/19
IP: 119.111.0.0/16
IP: 210.1.96.0 -- 210.1.143.255
IP: 210.23.96.0/19
IP: 210.23.160.0 -- 210.23.255.255
IP: 221.121.96.0/19
IP: 2404:d800::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125612 (0x1eaac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 9 13:00:45 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91269B8/serialNumber=6627CCAB6DC2E9586E2CC11B2795735A31FD9B8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:36:bd:a0:72:40:6a:47:3a:20:ed:70:f4:78:
22:6a:ea:a2:14:ca:b4:45:63:7f:d9:91:70:31:ec:
e3:22:67:c1:e2:b1:05:38:d0:cd:de:85:03:09:d9:
c7:4a:2d:ff:b8:45:74:a3:20:8f:24:4c:0e:e8:89:
36:47:89:fb:cd:78:d8:24:c5:d1:8c:71:f0:89:da:
0b:29:ae:55:6b:4b:b5:96:4c:b2:d6:f8:8e:31:14:
07:88:30:03:58:22:eb:5b:7d:eb:09:7c:c1:14:88:
af:fb:6b:8a:8e:d1:fd:e2:3b:43:c3:06:d8:82:3c:
df:94:89:88:c7:71:62:a9:e4:cb:cf:02:1d:df:6a:
f1:d1:85:5b:c2:9c:ab:ab:13:52:3d:0f:59:b7:42:
92:28:1c:41:4d:c0:42:2f:da:15:7e:97:d0:00:29:
7e:8d:18:bd:f2:f6:5a:58:f3:ef:1a:4d:f0:11:72:
94:0b:49:5a:e1:c8:88:7b:9c:6e:f2:10:26:ec:c5:
69:8e:59:f9:38:7e:50:24:50:d6:11:b1:97:b5:79:
ee:02:cf:07:a7:0b:5c:ee:1f:85:ad:3e:d6:6d:01:
93:d3:8e:5a:8b:81:e1:03:05:b4:51:d5:7d:6d:56:
ee:cb:28:93:1f:fe:71:83:fd:6e:10:0b:60:38:4b:
41:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:27:CC:AB:6D:C2:E9:58:6E:2C:C1:1B:27:95:73:5A:31:FD:9B:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91269B8/4ABAFEDE839411E5B01B591CC4F9AE02/ZifMq23C6VhuLMEbJ5VzWjH9m4o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7491
45126
sbgp-ipAddrBlock: critical
IPv4:
117.58.192.0/19
119.111.0.0/16
210.1.96.0-210.1.143.255
210.23.96.0/19
210.23.160.0-210.23.255.255
221.121.96.0/19
IPv6:
2404:d800::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ab:20:30:d2:08:cf:f2:06:62:14:7f:39:1b:9c:29:0f:27:
d6:52:af:8a:08:9f:b1:84:0c:5a:21:ff:d5:1d:36:c0:17:a3:
e1:e1:f2:51:fe:40:cc:42:c8:63:c8:0a:4c:4f:5b:11:53:32:
18:fe:56:19:e1:b6:31:fe:e4:7a:63:0d:be:28:35:2b:04:89:
dc:3c:f1:1c:de:e0:16:3e:34:1d:43:72:fd:40:ff:c4:66:6b:
d6:d8:65:1a:6f:36:06:9a:a7:00:60:79:a5:20:a5:69:d0:71:
34:0b:9c:ac:f3:56:62:3d:6b:2b:4f:c5:04:40:d6:83:d8:76:
8d:7e:d6:13:95:8a:71:69:b0:b8:47:b5:73:4c:35:4f:90:90:
60:22:9a:0d:e1:10:e0:9a:59:1b:ce:ba:38:f5:28:5f:71:e2:
24:71:94:ed:5e:6c:41:ce:ba:be:4f:f8:f7:9b:65:02:4b:6b:
e5:24:fb:ee:e7:cc:15:22:7e:b4:9a:ba:d5:15:7e:cb:51:32:
c4:0e:a3:19:91:ff:36:44:e5:06:a5:98:91:72:cb:8e:da:b0:
e1:55:b9:d1:3b:70:a3:9a:77:a7:48:8d:85:85:9e:9f:44:07:
bf:c1:61:1f:be:e8:9f:bd:df:7e:6d:22:6a:2d:a7:0f:09:ee:
eb:7f:98:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:27 2024 by rpki-client on console-fra.rpki-client.org